$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: wyAwxwaHHJE9nnsLm6wQPdpBxNapHBfo1pvKJOaBel4= Subject key identifier: 3E:46:9E:B2:A3:58:B4:99:B2:07:FF:09:CE:C8:AC:AE:6A:3D:1F:14 Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 06A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 0697 Signing time: Sat 18 Oct 2025 23:51:33 +0000 Manifest this update: Sat 18 Oct 2025 23:51:33 +0000 Manifest next update: Sat 25 Oct 2025 23:51:33 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: LiZ+4fUJrzS74FIZRU88whQ4FNRhiqEvjj+yuuj5YRg=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 6Nwx6Bdy1j4/Wbla1onGos1GwfTZf0C7yW2rjUd5bAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Oct 18 23:51:33 2025 GMT Not After : Oct 25 23:51:33 2025 GMT Subject: CN=68f42805-e415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4c:61:c3:52:c6:bf:5a:71:e9:be:33:2e:89: d6:5c:ac:5c:c4:2d:b3:b7:0f:43:02:5f:10:df:2e: eb:91:23:88:ec:dd:8c:24:25:b7:95:60:30:8f:f5: d5:46:be:53:8c:82:34:f8:92:dc:fd:67:cc:82:62: ae:95:68:27:5d:ac:dc:ed:1a:46:76:2b:9b:5a:bb: 54:aa:d4:b9:98:47:2c:4f:15:f9:01:7a:1b:c7:92: e0:dd:3a:0f:f9:14:af:a7:77:cc:52:0f:de:4e:d4: 19:10:fb:d3:a3:f7:a8:ff:5e:2a:23:82:d7:ef:ff: d4:ad:9f:33:f4:7d:38:e3:12:68:2b:e7:a1:6c:2d: 78:c3:2f:45:96:ad:24:ea:ac:0d:22:a6:ec:70:7f: 54:64:17:e6:62:8a:b1:9c:a3:5a:e2:65:51:9a:4a: c7:a3:79:0d:6a:aa:bb:0c:a8:7f:26:0a:28:a3:c4: d8:5f:35:91:6f:16:75:2e:b5:4e:e4:c0:7f:e6:9f: 5e:c7:37:fc:b6:de:99:d4:85:ce:93:48:fb:dc:68: cb:9a:de:13:dc:d6:1a:25:45:e1:88:bf:4e:bb:1d: 80:bc:08:7f:0e:6a:f3:3c:5a:3e:38:bd:ae:15:36: c2:ab:dd:e1:a8:1a:81:91:8c:31:11:19:82:d3:18: a2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:46:9E:B2:A3:58:B4:99:B2:07:FF:09:CE:C8:AC:AE:6A:3D:1F:14 X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:44:81:89:c8:97:b4:11:5a:41:9d:3a:4e:27:aa:f8:59:49: d9:4a:88:51:5c:41:b6:d7:e8:61:2f:8f:95:9d:05:b0:0b:14: cc:d9:e2:7a:38:53:b4:dd:84:b8:d7:88:d1:fd:9d:d9:ef:0d: 21:4a:fd:dd:6f:41:1b:07:62:d7:b3:16:a8:7d:d2:db:10:b8: 25:a6:52:87:a2:dd:f0:17:90:89:a2:37:ab:0d:37:1c:b5:07: ad:58:56:77:81:2e:f5:88:23:4c:85:9d:1b:58:69:e6:ec:93: 71:e5:63:eb:b1:d5:31:47:f6:86:90:44:be:35:58:7a:8f:98: d8:ea:b8:d4:a5:11:e1:e4:cd:10:66:fb:e0:15:4b:bb:84:33: 89:37:bc:1e:47:de:7c:d4:8f:c8:73:75:29:4c:62:6c:57:7c: de:2b:17:41:c5:3c:0b:5a:3d:cb:da:ed:93:ee:33:88:e3:fb: e8:8f:47:2e:01:99:0c:43:fa:0a:7b:90:cd:b3:ac:02:35:89: 26:8c:f7:9f:45:41:8b:ae:1b:1a:0f:49:1b:a7:01:65:db:1b: 6e:25:01:21:33:37:df:fb:83:61:31:73:12:81:6a:d4:08:c1: 2d:18:85:3b:05:7b:80:7e:5b:d2:83:86:29:47:db:6f:27:ce: fb:46:20:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUxMDE4MjM1MTMzWhcNMjUxMDI1MjM1MTMzWjAYMRYwFAYD VQQDEw02OGY0MjgwNS1lNDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApExhw1LGv1px6b4zLonWXKxcxC2ztw9DAl8Q3y7rkSOI7N2MJCW3lWAwj/XV Rr5TjII0+JLc/WfMgmKulWgnXazc7RpGdiubWrtUqtS5mEcsTxX5AXobx5Lg3ToP +RSvp3fMUg/eTtQZEPvTo/eo/14qI4LX7//UrZ8z9H044xJoK+ehbC14wy9Flq0k 6qwNIqbscH9UZBfmYoqxnKNa4mVRmkrHo3kNaqq7DKh/Jgooo8TYXzWRbxZ1LrVO 5MB/5p9exzf8tt6Z1IXOk0j73GjLmt4T3NYaJUXhiL9Oux2AvAh/DmrzPFo+OL2u FTbCq93hqBqBkYwxERmC0xiinQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5GnrKj WLSZsgf/Cc7IrK5qPR8UMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZRIGJyJe0EVpBnTpOJ6r4WUnZSohRXEG21+hhL4+VnQWwCxTM2eJ6 OFO03YS414jR/Z3Z7w0hSv3db0EbB2LXsxaofdLbELglplKHot3wF5CJojerDTcc tQetWFZ3gS71iCNMhZ0bWGnm7JNx5WPrsdUxR/aGkES+NVh6j5jY6rjUpRHh5M0Q ZvvgFUu7hDOJN7weR9581I/Ic3UpTGJsV3zeKxdBxTwLWj3L2u2T7jOI4/voj0cu AZkMQ/oKe5DNs6wCNYkmjPefRUGLrhsaD0kbpwFl2xtuJQEhMzff+4NhMXMSgWrU CMEtGIU7BXuAflvSg4YpR9tvJ877RiAi -----END CERTIFICATE-----Generated at Mon Oct 20 12:44:23 2025 by rpki-client